e119ed325b
Phase 6 deployment infrastructure: finalize Dockerfile with OCI labels, improve .env.example with grouped config keys, add scripts/pull-models.sh for Mac-side model setup, and add docs/deploy.md covering the full deployment topology, prerequisites, security model, and troubleshooting. Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com>
42 lines
993 B
Bash
42 lines
993 B
Bash
# === foreman daemon configuration ===
|
|
|
|
# Listen address (default: :8080)
|
|
FOREMAN_ADDR=:8080
|
|
|
|
# Ollama target URL (required — the Mac's Tailscale address)
|
|
FOREMAN_OLLAMA_URL=http://100.x.x.x:11434
|
|
|
|
# Outbound bearer token for Ollama target (optional)
|
|
FOREMAN_OLLAMA_TOKEN=
|
|
|
|
# Inbound bearer token foreman requires of its callers (optional)
|
|
FOREMAN_TOKEN=change-me-to-a-secret
|
|
|
|
# === Model configuration ===
|
|
|
|
# Always-resident embedding model (pinned in slot 1)
|
|
FOREMAN_EMBED_MODEL=nomic-embed-text
|
|
|
|
# === Persistence ===
|
|
|
|
# SQLite database path (default: foreman.db)
|
|
FOREMAN_DB_PATH=/data/foreman.db
|
|
|
|
# === Polling ===
|
|
|
|
# Model polling interval (default: 30s)
|
|
FOREMAN_POLL_INTERVAL=30s
|
|
|
|
# === Webhooks ===
|
|
|
|
# Webhook HMAC signing secret (optional — signs X-Foreman-Signature header)
|
|
FOREMAN_WEBHOOK_SECRET=
|
|
|
|
# === Job lifecycle ===
|
|
|
|
# Max retry attempts for failed jobs (default: 3)
|
|
FOREMAN_MAX_ATTEMPTS=3
|
|
|
|
# TTL for completed/failed jobs before pruning (default: 24h)
|
|
FOREMAN_JOB_TTL=24h
|